$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/VPQObJ7xVywnLaYG2Y74q0cW8Lc.roa File: VPQObJ7xVywnLaYG2Y74q0cW8Lc.roa (raw, json) Hash identifier: C80qpslmzM/FcDoz4g3J8Km6ZGc3jxTcqUsOxNHO+Q4= Subject key identifier: 54:F4:0E:6C:9E:F1:57:2C:27:2D:A6:06:D9:8E:F8:AB:47:16:F0:B7 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03F5 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/VPQObJ7xVywnLaYG2Y74q0cW8Lc.roa Signing time: Wed 18 Dec 2024 02:16:41 +0000 ROA not before: Wed 18 Dec 2024 02:16:41 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 222.7.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:16:41 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=54F40E6C9EF1572C272DA606D98EF8AB4716F0B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8a:88:ac:49:b3:28:db:d4:d3:63:14:7e:f9: 38:ab:79:0f:7f:68:b5:8c:f6:ed:b2:a1:fc:56:64: 74:bb:fc:7e:d3:d8:fe:83:e3:fc:fc:89:32:4a:c1: 9a:9d:20:92:21:97:fc:60:7f:f2:d6:87:18:a8:db: 2d:92:4e:92:89:14:c5:3f:ea:04:49:4d:ee:dc:3d: 41:85:9d:bd:a6:2a:55:03:f7:0f:92:66:51:e7:4f: 8a:55:b7:04:55:70:08:98:8a:4c:ba:0d:a7:79:50: e0:83:75:34:75:ad:e3:7e:c3:40:91:16:d6:15:c7: f2:a6:46:78:59:c2:fc:63:37:71:a9:ec:ac:c9:d1: 8a:cb:56:3d:ec:47:9d:d8:a6:ae:61:25:73:99:80: 5a:ca:44:1e:a5:a1:eb:ed:43:ba:f4:d7:de:09:57: 45:7d:8a:98:90:dd:15:aa:62:3e:05:cd:e8:b1:7b: 9f:ff:55:d3:70:28:d4:50:a9:07:b7:0a:2a:11:1a: df:7f:73:c5:d9:0f:9d:06:3d:a7:c5:a2:60:8e:96: e3:96:70:38:c7:4b:20:b0:3b:7a:82:10:ce:b4:b7: 0c:7d:18:2c:81:0b:e8:4f:e1:35:e0:c4:46:2d:51: 58:f8:7f:89:dd:92:52:2d:bd:43:90:8a:74:0d:68: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F4:0E:6C:9E:F1:57:2C:27:2D:A6:06:D9:8E:F8:AB:47:16:F0:B7 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/VPQObJ7xVywnLaYG2Y74q0cW8Lc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:c9:80:4c:a0:e5:43:67:9d:80:01:2f:aa:f2:6b:5a:29:0e: 67:9c:b4:df:42:d1:0a:2b:76:76:21:cb:87:6e:fc:69:79:49: 30:3d:02:39:09:fb:80:db:e7:32:d3:37:d6:35:69:be:6d:65: 08:dd:69:79:32:37:5d:b9:24:c3:e3:a6:f1:09:bc:4a:02:9e: 7e:4f:3d:27:ef:a2:9a:ed:ff:a3:a3:7a:cf:6d:80:66:26:9c: 8d:61:61:a2:4e:67:1c:6c:48:9a:67:19:07:73:5b:ae:03:ec: 17:ad:04:57:83:8f:2e:7c:24:8a:c4:d4:2a:a2:4b:af:a8:df: c5:7b:09:62:05:b0:ed:64:85:6b:47:5b:e7:e5:15:70:23:b3: f9:e8:d0:42:78:23:2a:1c:4d:03:93:db:98:00:78:cd:70:98: 0c:c0:68:be:b1:b7:fc:6b:d8:d4:08:77:91:04:7d:0f:c6:9a: 1f:a5:b6:0f:2a:92:49:34:37:c0:bd:c7:f9:85:d4:64:99:49: 24:ff:c4:45:19:9d:3b:c6:d7:80:a4:7e:df:3e:4a:aa:6e:48: 09:2d:1f:ce:63:f9:4f:3f:d2:f5:f6:74:78:83:38:ee:99:b4: 51:98:c6:7d:3f:7e:62:fc:be:1f:8e:ab:5f:ec:54:25:fa:0a: 1a:00:d7:ed -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE2NDFaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU0RjQwRTZDOUVGMTU3 MkMyNzJEQTYwNkQ5OEVGOEFCNDcxNkYwQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDioisSbMo29TTYxR++TireQ9/aLWM9u2yofxWZHS7/H7T2P6D 4/z8iTJKwZqdIJIhl/xgf/LWhxio2y2STpKJFMU/6gRJTe7cPUGFnb2mKlUD9w+S ZlHnT4pVtwRVcAiYiky6Dad5UOCDdTR1reN+w0CRFtYVx/KmRnhZwvxjN3Gp7KzJ 0YrLVj3sR53Ypq5hJXOZgFrKRB6loevtQ7r0194JV0V9ipiQ3RWqYj4Fzeixe5// VdNwKNRQqQe3CioRGt9/c8XZD50GPafFomCOluOWcDjHSyCwO3qCEM60twx9GCyB C+hP4TXgxEYtUVj4f4ndklItvUOQinQNaNrXAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUVPQObJ7xVywnLaYG2Y74q0cW8LcwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1ZQUU9iSjd4Vnl3bkxhWUcyWTc0cTBjVzhMYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDeBzANBgkqhkiG9w0BAQsFAAOCAQEAasmATKDlQ2edgAEvqvJrWikOZ5y0 30LRCit2diHLh278aXlJMD0COQn7gNvnMtM31jVpvm1lCN1peTI3Xbkkw+Om8Qm8 SgKefk89J++imu3/o6N6z22AZiacjWFhok5nHGxImmcZB3NbrgPsF60EV4OPLnwk isTUKqJLr6jfxXsJYgWw7WSFa0db5+UVcCOz+ejQQngjKhxNA5PbmAB4zXCYDMBo vrG3/GvY1Ah3kQR9D8aaH6W2DyqSSTQ3wL3H+YXUZJlJJP/ERRmdO8bXgKR+3z5K qm5ICS0fzmP5Tz/S9fZ0eIM47pm0UZjGfT9+Yvy+H46rX+xUJfoKGgDX7Q== -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:03 2025 by rpki-client